Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/4690c0-0b91-4322-94b9-706782cfa03b/1/8uU60O9vvh3-a_IdeGzZer5aWvk.roa
File: 8uU60O9vvh3-a_IdeGzZer5aWvk.roa (raw, json)
Hash identifier: jBi5d9waNU0DrWhAv6UeeDwWoE3o43qPwI0nEgewLcg=
Subject key identifier: F2:E5:3A:D0:EF:6F:BE:1D:FE:6B:F2:1D:78:6C:D9:7A:BE:5A:5A:F9
Certificate issuer: /CN=2330e26060913c758137488bfd7ab1bfe9e10ae2
Certificate serial: 0182E97836E6BD21B4809E473844279363F1
Authority key identifier: 23:30:E2:60:60:91:3C:75:81:37:48:8B:FD:7A:B1:BF:E9:E1:0A:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IzDiYGCRPHWBN0iL_Xqxv-nhCuI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/4690c0-0b91-4322-94b9-706782cfa03b/1/8uU60O9vvh3-a_IdeGzZer5aWvk.roa
Signing time: Mon 29 Aug 2022 11:59:05 +0000
ROA not before: Mon 29 Aug 2022 11:59:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3292
IP address blocks: 185.203.232.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:e9:78:36:e6:bd:21:b4:80:9e:47:38:44:27:93:63:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2330e26060913c758137488bfd7ab1bfe9e10ae2
Validity
Not Before: Aug 29 11:59:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f2e53ad0ef6fbe1dfe6bf21d786cd97abe5a5af9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:e6:78:56:5f:22:1e:bb:88:4d:be:fd:7d:3c:
86:d6:4d:bd:79:f7:13:87:08:08:53:9f:30:66:bc:
22:60:9f:be:b1:33:95:5a:a6:42:ff:5e:52:2a:06:
af:d5:f9:40:de:bd:f2:c6:4e:a9:31:a9:53:58:f1:
10:57:5a:51:23:e2:e1:0e:b4:1a:bd:a9:a3:c8:5a:
3f:66:47:b6:de:63:cf:85:c1:5f:61:5d:9e:12:bb:
e9:6a:3c:4e:9e:7c:b3:3a:21:b0:70:22:5a:51:5b:
40:7b:b5:91:3c:f9:99:f8:05:c5:dd:45:4a:3a:f6:
c9:0c:04:85:0b:37:bc:51:92:2d:b9:e7:9a:bc:14:
2b:fa:2a:81:3b:65:c5:11:11:fe:41:16:8c:08:e6:
9c:93:79:cd:dd:cd:b5:cd:5d:9c:46:41:4a:fa:70:
fc:a3:68:33:63:18:e5:40:ce:22:fb:61:95:41:c6:
4c:c7:d5:0a:e2:82:d8:b6:8c:85:f5:94:a1:bd:97:
22:b9:ef:0c:1c:dd:30:67:5e:3e:aa:2f:c7:7f:d1:
6e:4f:fe:de:a0:64:d6:88:f3:5d:1a:ef:51:20:26:
39:71:38:93:e1:f9:68:07:5b:22:e4:7c:93:8b:fc:
ed:1c:86:e6:c7:d4:31:43:66:16:a5:f6:5c:4d:b1:
7d:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:E5:3A:D0:EF:6F:BE:1D:FE:6B:F2:1D:78:6C:D9:7A:BE:5A:5A:F9
X509v3 Authority Key Identifier:
keyid:23:30:E2:60:60:91:3C:75:81:37:48:8B:FD:7A:B1:BF:E9:E1:0A:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IzDiYGCRPHWBN0iL_Xqxv-nhCuI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4690c0-0b91-4322-94b9-706782cfa03b/1/8uU60O9vvh3-a_IdeGzZer5aWvk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4690c0-0b91-4322-94b9-706782cfa03b/1/IzDiYGCRPHWBN0iL_Xqxv-nhCuI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.203.232.0/24
Signature Algorithm: sha256WithRSAEncryption
57:21:b8:5a:64:39:d9:af:46:5f:e1:c3:46:30:6d:bd:7c:41:
97:90:7e:9f:47:bb:8b:35:b5:25:66:f5:95:f1:49:e5:65:67:
9a:e8:87:35:5e:e5:da:84:51:63:77:74:fe:f7:8f:0d:20:09:
9e:9b:0d:e0:5b:ba:87:28:4b:6d:74:36:b2:12:77:d8:04:b7:
6a:ec:f3:68:4d:b1:22:3f:cb:5c:0f:c5:cc:97:50:a9:85:c1:
15:8b:62:52:1e:e3:f5:a3:38:8f:27:83:7b:b2:a5:67:8c:5d:
d5:ad:72:06:a9:5e:8e:1b:d4:67:47:c8:44:08:3d:fe:c4:22:
30:1b:06:be:aa:14:b9:60:f5:67:7d:21:23:8e:f7:27:bd:2d:
38:0e:0c:2e:ee:43:78:cc:dd:10:e5:20:2d:a8:78:fa:f4:e8:
6e:e4:42:aa:3b:57:32:ec:4b:95:72:9e:99:dd:9a:be:5a:31:
0c:8f:82:ec:c1:c4:00:68:f9:de:95:35:1f:c1:be:89:73:08:
21:b1:ce:0e:b6:ac:67:a7:0a:e5:86:ce:28:db:28:21:83:fa:
06:3c:4d:6e:09:ff:5a:ca:ed:12:7e:b1:3e:a1:ed:1c:f8:e8:
37:ab:c0:2c:20:1c:39:82:43:cf:88:23:25:16:58:eb:11:fc:
ea:58:fa:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:37 2024 by rpki-client on console-ams.rpki-client.org